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DETAILED ACTION 

1. Applicant's submission for RCE filed on April 12, 2005 has been entered. 
Claims 1-21 are pending. 

Claim Rejections - 35 USC § 102 

2. The following is a quotation of the appropriate paragraphs of 35 
U.S.C. 102 that form the basis for the rejections under this section made in this Office 
action: 

A person shall be entitled to a patent unless - 

(e) the invention was described in (1) an application for patent, published under section 122(b), by 
another filed in the United States before the invention by the applicant for patent or (2) a patent 
granted on an application for patent by another filed in the United States before the invention by the 
applicant for patent, except that an international application filed under the treaty defined in section 
351(a) shall have the effects for purposes of this subsection of an application filed in the United States 
only if the international application designated the United States and was published under Article 21 (2) 
of such treaty in the English language. 

3. Claims 1, 4-6, 9-10, and 13 are rejected under 35 U.S.C. 102(e) as being 
anticipated by Ram et al (US 6,519,700 B1). 

a. Referring to claim 1: 
i. Ram teaches: 

(1) a verification system (e.g. a rights enforcer) to 
validate the integrity of the player applications [i.e., a rights enforcer 524 is present to 
verify the user's identity, to compare a requested action by the user to those 
actions enumerated in the rights and permissions segment 514, and to permit or 
deny the requested action depending on the specified rights (column 8, lines 37- 

41)]; 

(2) a trusted content handler (e.g. a user system) to 
decrypt content and to transmit the decrypted content to the player applications, using 
an extension mechanism defined by the application, and to enforce usage rights 
associated with the content [i.e., referring to Figure 1, the user 118 is then able to 
use his private key to decrypt the modified content 116 and view the original 
content 112 (column 6, lines 6-14). In addition, Figure 3 looks similar to FIG. 2, in 
that an encrypted document 310 is passed to a decryption step 312 (which uses a 
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private key 314) and a rendering application 316, resulting in presentation data 
318 (column 6, lines 3-6)]; and 

(3) a user interface control module (e.g., a rights and 
permission segment) to ensure that the user interaction with the player applications 
does not violate the usage rights p.e., a rights enforcer 524 is present to verify the 
user's identity, to compare a requested action by the user to those actions 
enumerated in the rights and permissions segment 514, and to permit or deny the 
requested action depending on the specified rights (column 8, lines 37-41). In 
addition, the rights and permissions segment 514 is cryptographically signed (by 
methods known in the art) to prevent tampering with the specified rights and 
permissions; it may also be encrypted to prevent the user from directly viewing 
the rights and permissions of himself and others (column 8, lines 23-27)]; 

(4) wherein components of the verification system, the 
trusted content handler, and user interface control module of the digital rights 
management system operate independently from the player application and reside 
locally in an end-user device having said player applications [i.e., the portions of the 
invention described in Ram's system that are described as software components 
could be implemented as hardware. Moreover, while certain functional blocks are 
described herein as separate and independent from each other, these functional 
blocks can be consolidated and performed on a single general-purpose 
computer, or further broken down into sub-functions as recognized in the art. 
(column 14, lines 5-12)]. 

b. Referring to claim 4: 

i. Ram further teaches: 

(1) wherein the player applications request protected 
content, and the trusted content handler includes an authenticator to verify that a player 
application that requests protected content has been authorized by the verification 
system to access the requested, protected content [i.e., the operation performed 
when a user receives an SPD are depicted in the flow diagram of Figure 7. The 
SPD is first received and stored at the user's system (step 710); in many usage, it 
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is not necessary to use the SPD right away. When usage is desired, the user is 
first authenticated as discussed above (column 12, lines 11-32)]. 

c. Referring to claim 5: 

i. Ram further teaches: 

(1) wherein a user interface control module traps user 
interface related messages generated as a result of user interactions with player 
applications, blocks messages that lead to usage rights violations, and passes through 
other messages to the player applications [i.e., the generic SPD 610 is received by 
the distributor 114, and is stored for later customization. When a user request 
624 is received by the distributor 114 (either directly or through the clearinghouse 
122 or other intermediary), the distributor 114 creates a set of user permissions 
(step 626) that is consistent with both the user request 624 and the rights 
specification 614. If there is no such consistent set of permissions, then no 
further action is performed on that user's behalf (other than an optional 
notification message to the user) (column 11, lines 47-56)]. 

d. Referring to claims 6 and 10: 

i. These claims have limitations that is similar to those of claim 
1, thus they are rejected with the same rationale applied against claim 1 above. 

e. Referring to claims 9 and 13: 

i. These claims have limitations that is similar to those of claim 
4, thus they are rejected with the same rationale applied against claim 4 above. 

Claim Rejections - 35 USC § 103 

4. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for 
all obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 
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5. Claims 2-3, 7-8, and 11-12 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Ram et al (US 6,519,700 B1), and further in view of Vandergeest (US 
6,247,127 B1). 

a. Referring to claim 2: 

i. Ram teaches the claimed subject matter, however Ram 
does not explicitly mention an off line verifier to verify that the player applications have 
certain properties, and to issue trust certificates to verify that the player applications 
have said properties. On the other hand, Vandergeest teaches: 

(1) The secure information includes the certificates of 
end-users, or targeted communication entities. While the off-line end-user may receive 
the certificates for all other end-users of the system, typically, the off-line end-user will 
only request the certificates of end-users of interest, i.e., ones that will be involved in a 
secure communication with the off-line end-user. The secure information may further 
include cross-certificates 38, an authority revocation list 38, and a certificate revocation 
list 40. The off-line end-user verifies the secure information by comparing a time stamp 
of the security information with a validity period, which is based on the frequency at 
which the revocation lists 38 and 40 are updated. Thus if the revocation list 38 and 40 
are updated daily, the validity period is 24 hours. The off-line end-user may further 
verify the security information by ensuring that a trust party (e.g., a trusted certification 
authority) signed the security information and the trusted party is not identified on the 
authority revocation list. The off-line end-user may still further verify the security 
information by determining that certificate of the at least one targeted communication is 
not on the certificate revocation list. The off-line end-user may even further verify the 
security information by ensuring that appropriate key usage, i.e., encryption keys are 
used for encryption purposes and verification keys are used for verification purposes. 
The off-line end-user may still even further verify the security information by ensuring 
policy compliance regarding the security information and messages based thereon 
(column 4, lines 45-66 of Vandergeest). 

iii. It would have been obvious to a person having ordinary skill 
in the art at the time the invention was made to: 



Application/Control Number: 09/667,286 
Art Unit: 2135 



Page 6 



(1 ) include the off-line verification in Hurtado for providing 
off-line secure communication (column 2, lines 51-52 of Vandergeest). 

iv. The ordinary skilled person would have been motivated to: 

(1) include the off-line verification to allow end-users to 
go off-line from a security information repository (e.g., a directory, a certification 
authority, or a server), and confidently participate in secure communications. As such, 
an end-user, while off-line, may securely and in a trustworthy manner, read encrypted e- 
mail messages, prepare secure outgoing messages, access encryption protected 
folders, etc (column 3, lines 3-9 of Vandergeest). 

b. Referring to claim 3: 

i. Ram further teaches: 

(1) wherein the verification system further includes a 
verifying launcher for verifying that a particular player application is certified as a trusted 
application before digital content is transmitted to said particular player application [i.e., 
enforcement of rights and verification of conditions associate with rights is 
performed using the SPD (self-protecting-document) technology (column 10, 
lines 2-4). The generic SPD 610 is created by combining the pre-processed 
content 612, the pre-processed rights specification 614, and the watermark 616. 
A watermark may be added by any means known in the art; it may be either 
visible or concealed within the SPD. The generic SPD 610 may also optionally be 
encrypted by the author/publisher 110 for transmission to the distributor 114 as 
shown in Figure 1 (column 11, lines 39-46)]. 

c. Referring to claims 7 and 1 1: 

i. These claims have limitations that is similar to those of claim 

2, thus they are rejected with the same rationale applied against claim 2 above. 

d. Referring to claims 8 and 12: 

i. These claims have limitations that is similar to those of claim 

3, thus they are rejected with the same rationale applied against claim 3 above. 
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6. Claims 14-21 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over Ram et al (US 6,519,700 B1), further in view of Vandergeest (US 6,247,127 B1), 
and further in view of Peinado (US 6,775,655). 
a. Referring to claim 14: 

i. The combination of teachings between Ram and 
Vandergeest teach the claimed subject matter. They, however, are silent about the 
certificate generator (e.g., certifying authority) and certificate repository (e.g., license 
server), whereas Peinado teaches: 

(1) As seen in Figure 3, each new black box 30 is 
provided with a version number and a certificate with a digital signature from a certifying 
authority. As was discussed above in connection with the license acquisition function, 
the version number of the black box 30 indicates the relative age and/or use thereof. 
The certificate with the digital signature from the certifying authority, also discussed 
above in connection with the license acquisition function, is a proffer or vouching 
mechanism from the certifying authority that a license server 24 should trust the black 
box 30. Of course, the license server 24 must trust the certifying authority to issue such 
a certificate for a black box 30 that is in fact trustworthy. It may be the case, in fact, that 
the license server 24 does not trust a particular certifying authority, and refuses to honor 
any certificate issued by such certifying authority. Trust may not occur, for example, if a 
particular certifying authority is found to be engaging in a pattern of improperly issuing 
certificates (column x, lines x-x of Peinado). 

iii. It would have been obvious to a person having ordinary skill 
in the art at the time the invention was made to: 

(1) include the certificate generator and repository in 
Ram's SPD system for protection during document delivery from a document distributor 
to an intended user over a public network, as well as during document storage on an 
insecure medium (column 2, lines 17-20 of Ram). 

iv. The ordinary skilled person would have been motivated to: 
(1) include the certificate generator and repository in 

Ram's SPD system since certain trusted components can be deployed, one must 
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continue to rely upon various unknown and untrusted elements and systems. On such 
systems, even if they are expected to be secure, unanticipated bugs and weaknesses 
are frequently found and exploited (column 2, lines 37-41 of Ram). 

b. Referring to claim 15: 

i. Ram further teaches: 

(1) wherein the code verifier is responsible for launching 
the player application and verifying the identity and integrity of the code using the 
information in the trust certificate before launching the application; the launch procedure 
returning process identification information, which the code verifier records internally; 
the authenticator communicating the same or other process identification information 
concerning its own process, which it obtains from system service calls, to the code 
verifier at the time the application requests: content from the authenticator; the code 
verifier matching this process identification information against the process identification 
information it recorded; the code verifier returning a code indicating whether the process 
was verified or not [i.e., the self-protecting document 510 includes three major 
functional segments: an executable code segment 512 contains certain portions 
of executable code necessary to enable the user to use the encrypted document; 
a rights and permissions segment 514 contains data structures representative of 
the various levels of access, that are to be permitted to various users; and a 
content segment 516 includes the encrypted content 116 (FIG. 1) sought to be 
viewed by the user (column 7, lines 52-60). A secure viewer 530 is optionally 
included in the executable code segment 512. The secure viewer 530 is used to 
permit only those levels of access that are permitted according to the rights and 
permissions segment 514. For example, if the user purchased only sufficient 
rights to view a document (and not to save or print it), the viewer will not permit 
the user to save, print, or perform the standard cut-and-paste operations possible 
in most modern operating systems (column 9, lines 8-15)]. 

c. Referring to claim 16: 

L This claim has limitations that is similar to those of claim 15, 
thus it is rejected with the same rationale applied against claim 15 above. 
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d. Referring to claim 17: 

i. The combination of teachings between Ram, Vandergeest, 
and Peinado teach the claimed subject matter. Peinado further teaches: 

(1) wherein the trust certificate includes: a program 
identifier identifying said one of the applications; a property name identifying an attribute 
certified by the trust certificate; a code digest of the one application; a digital signature 
containing a secret key of the application certifier; and a certifier identification containing 
a public key of the application certifier [i.e., the public key of the black box 30 of the 
DRM system 32 (PU-BB); the version number of the black box 30 of the DRM 
system 32; a certificate with a digital signature from a certifying authority 
certifying the black box 30 (where the certificate may in fact include the 
aforementioned public key and version number of the black box 30); the content 
ID (or package ID) that identifies the digital content 12 (or package 12p); the key 
ID that identifies the decryption key (KD) for decrypting the digital content 12;) 
(column x, lines x-x). Furthermore, the certificate with the digital signature from 
the certifying authority, also discussed above in connection with the license 
acquisition function, is a proffer or vouching mechanism from the certifying 
authority that a license server 24 should trust the black box 30. Of course, the 
license server 24 must trust the certifying authority to issue such a certificate for 
a black box 30 that is in fact trustworthy. It may be the case, in fact, that the 
license server 24 does not trust a particular certifying authority, and refuses to 
honor any certificate issued by such certifying authority. Trust may not occur, 
for example, if a particular certifying authority is found to be engaging in a 
pattern of improperly issuing certificates (column x, lines x-x)]. 

e. Referring to claims 18 and 20: 

I These claims have limitations that is similar to those of claim 
14, thus they are rejected with the same rationale applied against claim 14 above. 

f. Referring to claims 19 and 21: 

i. These claims have limitations that is similar to those of claim 
17, thus they are rejected with the same rationale applied against claim 17 above. 
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Conclusion 

7. The prior art made of record and not relied upon is considered pertinent to 
applicant's disclosure. 

Any inquiry concerning this communication or earlier communications from 
the examiner should be directed to Thanhnga (Tanya) Truong whose telephone number 
is 571 -272-3858. 

If attempts to reach the examiner by telephone are unsuccessful, the 
examiner's supervisor, Kim Vu can be reached on 571 -272-3859. The fax and phone 
numbers for the organization where this application or proceeding is assigned is 703- 
872-9306. 

Any inquiry of a general nature or relating to the status of this application 
or proceeding should be directed to the receptionist whose telephone number is 571- 
272-2100. 



TBT 



June 25, 2005 




